Vulnerabilities > Wire > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-20 | CVE-2023-48221 | Use of Externally-Controlled Format String vulnerability in Wire Audio, Video, and Signaling wire-avs provides Audio, Visual, and Signaling (AVS) functionality sure the secure messaging software Wire. | 8.8 |
| 2022-10-18 | CVE-2022-31122 | Improper Authentication vulnerability in Wire Server Wire is an encrypted communication and collaboration platform. | 8.1 |
| 2022-04-13 | CVE-2021-41119 | Resource Exhaustion vulnerability in Wire Wire-Server 20210816 Wire-server is the system server for the wire back-end services. | 7.5 |
| 2022-03-16 | CVE-2022-23610 | Improper Verification of Cryptographic Signature vulnerability in Wire Wire-Server wire-server provides back end services for Wire, an open source messenger. | 8.1 |
| 2020-10-16 | CVE-2020-15258 | Improper Input Validation vulnerability in Wire In Wire before 3.20.x, `shell.openExternal` was used without checking the URL. | 8.0 |
| 2018-03-22 | CVE-2018-8909 | Path Traversal vulnerability in Wire The Wire application before 2018-03-07 for Android allows attackers to write to pathnames outside of the downloads directory via a ../ in a filename of a received file, related to AssetService.scala. | 7.5 |